{"id":"https://openalex.org/W3119960109","doi":"https://doi.org/10.1145/3424954.3424964","title":"A Novel Approach for Acquiring Training and Software Security Requirements","display_name":"A Novel Approach for Acquiring Training and Software Security Requirements","publication_year":2020,"publication_date":"2020-11-18","ids":{"openalex":"https://openalex.org/W3119960109","doi":"https://doi.org/10.1145/3424954.3424964","mag":"3119960109"},"language":"en","primary_location":{"id":"doi:10.1145/3424954.3424964","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3424954.3424964","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the European Interdisciplinary Cybersecurity Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5011552992","display_name":"Damjan Fujs","orcid":"https://orcid.org/0000-0002-6357-8569"},"institutions":[{"id":"https://openalex.org/I153976015","display_name":"University of Ljubljana","ror":"https://ror.org/05njb9z20","country_code":"SI","type":"education","lineage":["https://openalex.org/I153976015"]}],"countries":["SI"],"is_corresponding":true,"raw_author_name":"Damjan Fujs","raw_affiliation_strings":["University of Ljubljana, Ljubljana, Slovenia"],"affiliations":[{"raw_affiliation_string":"University of Ljubljana, Ljubljana, Slovenia","institution_ids":["https://openalex.org/I153976015"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009447400","display_name":"Simon Vrhovec","orcid":"https://orcid.org/0000-0002-6951-6369"},"institutions":[{"id":"https://openalex.org/I37696226","display_name":"University of Maribor","ror":"https://ror.org/01d5jce07","country_code":"SI","type":"education","lineage":["https://openalex.org/I37696226"]}],"countries":["SI"],"is_corresponding":false,"raw_author_name":"Simon Vrhovec","raw_affiliation_strings":["University of Maribor, Ljubljana, Slovenia"],"affiliations":[{"raw_affiliation_string":"University of Maribor, Ljubljana, Slovenia","institution_ids":["https://openalex.org/I37696226"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5083321233","display_name":"Damjan Vavpoti\u010d","orcid":"https://orcid.org/0000-0002-8039-7110"},"institutions":[{"id":"https://openalex.org/I153976015","display_name":"University of Ljubljana","ror":"https://ror.org/05njb9z20","country_code":"SI","type":"education","lineage":["https://openalex.org/I153976015"]}],"countries":["SI"],"is_corresponding":false,"raw_author_name":"Damjan Vavpoti\u010d","raw_affiliation_strings":["University of Ljubljana, Ljubljana, Slovenia"],"affiliations":[{"raw_affiliation_string":"University of Ljubljana, Ljubljana, Slovenia","institution_ids":["https://openalex.org/I153976015"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5011552992"],"corresponding_institution_ids":["https://openalex.org/I153976015"],"apc_list":null,"apc_paid":null,"fwci":0.2669,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.68634701,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":93},"biblio":{"volume":"25","issue":null,"first_page":"1","last_page":"2"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9945999979972839,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/security-engineering","display_name":"Security engineering","score":0.7614467144012451},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.7206473350524902},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.717997133731842},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.6461120247840881},{"id":"https://openalex.org/keywords/requirements-engineering","display_name":"Requirements engineering","score":0.6007322072982788},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.584969162940979},{"id":"https://openalex.org/keywords/software-requirements","display_name":"Software requirements","score":0.5525611639022827},{"id":"https://openalex.org/keywords/requirements-analysis","display_name":"Requirements analysis","score":0.5287163853645325},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.5198915004730225},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.5067909359931946},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.4832497239112854},{"id":"https://openalex.org/keywords/requirements-elicitation","display_name":"Requirements elicitation","score":0.46950435638427734},{"id":"https://openalex.org/keywords/business-requirements","display_name":"Business requirements","score":0.4475921094417572},{"id":"https://openalex.org/keywords/requirement","display_name":"Requirement","score":0.4390827715396881},{"id":"https://openalex.org/keywords/user-requirements-document","display_name":"User requirements document","score":0.4177089035511017},{"id":"https://openalex.org/keywords/requirements-management","display_name":"Requirements management","score":0.4133464992046356},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4113999605178833},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3997349739074707},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.3596140444278717},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3254883289337158},{"id":"https://openalex.org/keywords/software-development","display_name":"Software development","score":0.28067222237586975},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2692747712135315},{"id":"https://openalex.org/keywords/component-based-software-engineering","display_name":"Component-based software engineering","score":0.2178695797920227},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.14746856689453125},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.0606285035610199},{"id":"https://openalex.org/keywords/compatibility","display_name":"Compatibility (geochemistry)","score":0.05850529670715332}],"concepts":[{"id":"https://openalex.org/C13159133","wikidata":"https://www.wikidata.org/wiki/Q365674","display_name":"Security engineering","level":5,"score":0.7614467144012451},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.7206473350524902},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.717997133731842},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.6461120247840881},{"id":"https://openalex.org/C6604083","wikidata":"https://www.wikidata.org/wiki/Q376937","display_name":"Requirements engineering","level":3,"score":0.6007322072982788},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.584969162940979},{"id":"https://openalex.org/C54534927","wikidata":"https://www.wikidata.org/wiki/Q4462275","display_name":"Software requirements","level":5,"score":0.5525611639022827},{"id":"https://openalex.org/C59488412","wikidata":"https://www.wikidata.org/wiki/Q187147","display_name":"Requirements analysis","level":3,"score":0.5287163853645325},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.5198915004730225},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.5067909359931946},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.4832497239112854},{"id":"https://openalex.org/C45384764","wikidata":"https://www.wikidata.org/wiki/Q838667","display_name":"Requirements elicitation","level":4,"score":0.46950435638427734},{"id":"https://openalex.org/C123247970","wikidata":"https://www.wikidata.org/wiki/Q5001932","display_name":"Business requirements","level":4,"score":0.4475921094417572},{"id":"https://openalex.org/C135475081","wikidata":"https://www.wikidata.org/wiki/Q774228","display_name":"Requirement","level":4,"score":0.4390827715396881},{"id":"https://openalex.org/C143267671","wikidata":"https://www.wikidata.org/wiki/Q7901856","display_name":"User requirements document","level":2,"score":0.4177089035511017},{"id":"https://openalex.org/C173577280","wikidata":"https://www.wikidata.org/wiki/Q530038","display_name":"Requirements management","level":4,"score":0.4133464992046356},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4113999605178833},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3997349739074707},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.3596140444278717},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3254883289337158},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.28067222237586975},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2692747712135315},{"id":"https://openalex.org/C174683762","wikidata":"https://www.wikidata.org/wiki/Q609588","display_name":"Component-based software engineering","level":4,"score":0.2178695797920227},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.14746856689453125},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0606285035610199},{"id":"https://openalex.org/C2778648169","wikidata":"https://www.wikidata.org/wiki/Q967768","display_name":"Compatibility (geochemistry)","level":2,"score":0.05850529670715332},{"id":"https://openalex.org/C85345410","wikidata":"https://www.wikidata.org/wiki/Q851587","display_name":"Business process","level":3,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C42360764","wikidata":"https://www.wikidata.org/wiki/Q83588","display_name":"Chemical engineering","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3424954.3424964","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3424954.3424964","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the European Interdisciplinary Cybersecurity Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G6512322695","display_name":null,"funder_award_id":"Human factors in cybersecurity and digital forensics","funder_id":"https://openalex.org/F4320325843","funder_display_name":"Univerza v Mariboru"}],"funders":[{"id":"https://openalex.org/F4320325843","display_name":"Univerza v Mariboru","ror":"https://ror.org/01d5jce07"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W2029699977","https://openalex.org/W2930608510","https://openalex.org/W2970005877","https://openalex.org/W3013976822","https://openalex.org/W3016448350","https://openalex.org/W3023452601"],"related_works":["https://openalex.org/W2574990557","https://openalex.org/W64923018","https://openalex.org/W2472769502","https://openalex.org/W2005455721","https://openalex.org/W2047958626","https://openalex.org/W1987814216","https://openalex.org/W3004985072","https://openalex.org/W2608001814","https://openalex.org/W4292814261","https://openalex.org/W2135031301"],"abstract_inverted_index":{"Security":[0],"is":[1,23],"an":[2],"important":[3],"software":[4,32],"quality":[5],"attribute":[6],"albeit,":[7],"as":[8],"a":[9,45,58],"nonfunctional":[10],"requirement,":[11],"often":[12],"overlooked.":[13],"Although":[14],"several":[15],"approaches":[16],"for":[17,48],"security":[18,29,50,59,69,75,90,113,116],"requirements":[19,30,51,70,76,91,117],"engineering":[20,118],"exist,":[21],"it":[22],"not":[24],"clear":[25],"how":[26],"to":[27,31,38,81,96,101,120],"adapt":[28],"end":[33,54,103,124],"users.":[34,125],"This":[35],"poster":[36],"aims":[37],"fill":[39],"in":[40,85,115],"this":[41,65],"gap":[42],"by":[43,52],"developing":[44],"novel":[46],"approach":[47,110],"acquiring":[49],"leveraging":[53],"user":[55],"analysis":[56],"and":[57],"body":[60],"of":[61,123],"knowledge.":[62],"To":[63],"achieve":[64],"aim,":[66],"we":[67],"divide":[68],"into":[71],"two":[72],"categories.":[73],"Software":[74],"are":[77,92],"those":[78,93],"that":[79,94,105],"need":[80,106],"be":[82],"technically":[83],"implemented":[84],"the":[86,98,102,121],"developed":[87],"software.":[88],"Training":[89],"aim":[95],"provide":[97],"necessary":[99],"training":[100],"users":[104],"it.":[107],"The":[108],"proposed":[109],"may":[111],"help":[112],"experts":[114],"tailored":[119],"characteristics":[122]},"counts_by_year":[{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}